Lucene search
K

757 matches found

Cvelist
Cvelist
added 2023/10/06 2:51 p.m.23 views

CVE-2023-40607 WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in CLUEVO CLUEVO LMS, E-Learning Platform plugin = 1.10.0 versions...

4.3CVSS9AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2023/10/06 2:51 p.m.64 views

CVE-2023-40607

CVE-2023-40607 is a CSRF vulnerability in the WordPress plugin CLUEVO LMS, E-Learning Platform , affecting versions ≤ 1.10.0 . The issue could enable an unauthenticated attacker to trigger actions on behalf of a user; remediation is to upgrade to version 1.11.0 or newer . Public sources show vary...

8.8CVSS6.5AI score0.00214EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/06 12:0 a.m.6 views

WordPress Plugin CLUEVO LMS, E-Learning Platform Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.5AI score0.00214EPSS
Exploits0References2
Metasploit
Metasploit
added 2023/08/24 7:50 p.m.436 views

Chamilo unauthenticated command injection in PowerPoint upload

Chamilo is an e-learning platform, also called Learning Management Systems LMS. This module exploits an unauthenticated remote command execution vulnerability that affects Chamilo versions 1.11.18 and below CVE-2023-34960. Due to a functionality called Chamilo Rapid to easily convert PowerPoint...

9.8CVSS9.4AI score0.99397EPSS
Exploits9
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.3 views

Moodle 安全漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle, which stems from the presence of an SQL injection vulnerability...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

Moodle 安全漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle, which stems from the presence of a redirection vulnerability...

5.5AI score
Exploits0References1
Patchstack
Patchstack
added 2023/08/17 12:0 a.m.13 views

WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software CLUEVO LMS, E-Learning Platform Type Plugin Vulnerable versions = 1.10.0 Fixed in 1.11.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-40607 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 43e0be6be22c Credits...

8.8CVSS6.6AI score0.00214EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/07/10 4:15 p.m.18 views

CVE-2023-3563

A vulnerability was found in GZ Scripts GZ E Learning Platform 1.8 and classified as problematic. This issue affects some unknown processing of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-233357 was...

6.1CVSS4.5AI score0.00442EPSS
Exploits0References2
OSV
OSV
added 2023/07/10 4:15 p.m.4 views

CVE-2023-3563

A vulnerability was found in GZ Scripts GZ E Learning Platform 1.8 and classified as problematic. This issue affects some unknown processing of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-233357 was...

6.1CVSS3.8AI score0.00442EPSS
Exploits0References2
Prion
Prion
added 2023/07/10 4:15 p.m.23 views

Cross site scripting

A vulnerability was found in GZ Scripts GZ E Learning Platform 1.8 and classified as problematic. This issue affects some unknown processing of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-233357 was...

4CVSS6AI score0.00442EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.2 views

GZ Scripts GZ E Learning Platform 跨站脚本漏洞

GZ Scripts GZ E Learning Platform is a php e-learning platform from GZ Scripts. A cross-site scripting vulnerability exists in GZ Scripts GZ E Learning Platform that stems from an unknown issue...

6.1CVSS4.6AI score0.00442EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/07/08 4:31 p.m.8 views

CVE-2023-3563 GZ Scripts GZ E Learning Platform URL Parameter cross site scripting

A vulnerability was found in GZ Scripts GZ E Learning Platform 1.8 and classified as problematic. This issue affects some unknown processing of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-233357 was...

4CVSS6.3AI score0.00442EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/08 4:31 p.m.26 views

CVE-2023-3563 GZ Scripts GZ E Learning Platform URL Parameter cross site scripting

A vulnerability was found in GZ Scripts GZ E Learning Platform 1.8 and classified as problematic. This issue affects some unknown processing of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-233357 was...

4CVSS6.2AI score0.00442EPSS
Exploits0References2
CVE
CVE
added 2023/07/08 4:31 p.m.43 views

CVE-2023-3563

The CVE-2023-3563 entry concerns GZ Scripts’ GZ E Learning Platform 1.8. The vulnerability affects the URL Parameter Handler component, caused by insecure/unknown processing that enables cross-site scripting (XSS) and can be exploited remotely. The available sources do not specify a fixed version...

6.1CVSS4.5AI score0.00442EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/08 12:0 a.m.6 views

PT-2023-25233 · Gz Scripts · Gz E Learning Platform

Name of the Vulnerable Software and Affected Versions: GZ Scripts GZ E Learning Platform version 1.8 Description: A problem was found in the processing of the component URL Parameter Handler, which can lead to cross site scripting. The issue can be exploited remotely. Recommendations: For GZ...

6.1CVSS6.3AI score0.00442EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2023/06/30 12:0 a.m.329 views

GZ E Learning Platform 1.8 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.1AI score
Exploits0
CNVD
CNVD
added 2023/05/30 12:0 a.m.26 views

Moodle cross-site scripting vulnerability (CNVD-2023-43862)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A cross-site scripting vulnerability exists in Moodle version 3.10.1 that stems from improper input cleanup and is susceptible to...

5.4CVSS5.6AI score0.00686EPSS
Exploits1References1
CNVD
CNVD
added 2023/04/27 12:0 a.m.10 views

Moodle Uncontrolled Resource Consumption Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. An uncontrolled resource consumption vulnerability exists in the Moodle URL parsing process, which can be exploited by an attacker to...

7.5CVSS6.5AI score0.00734EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2022/11/28 5:40 a.m.12 views

e-learning.mahkamahagung.go.id Cross Site Scripting vulnerability OBB-3075636

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/11/28 5:37 a.m.17 views

e-learning-cco.unoesc.edu.br Cross Site Scripting vulnerability OBB-3075623

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder